7 matches found
EUVD-2024-41559
Malicious code in bioql PyPI...
Hitron CGNF-TWN 安全漏洞
Hitron CGNF-TWN is a wireless router from Hitron Corporation of Taiwan, China. A security vulnerability exists in Hitron CGNF-TWN version 3.1.1.43-TWN-pre3, which stems from insufficient telnet service input validation and could lead to remote code execution...
GLSA-202310-12 : curl: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202310-12 curl: Multiple Vulnerabilities - A vulnerability exists in curl 7.87.0 HSTS check that could be bypassed to trick it to keep using HTTP. Using its HSTS support, curl can be instructed to use HTTPS instead of using an...
EulerOS 2.0 SP10 : curl (EulerOS-SA-2023-1798)
According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A vulnerability in input validation exists in curl 8.0 during communication using the TELNET protocol may allow an attacker to pass on maliciously...
OESA-2023-1194 curl security update
cURL is a computer software project providing a library libcurl and command-line tool curl for transferring data using various protocols. Security Fixes: libcurl keeps previously used connections in a connection pool for subsequent transfers to reuse if one of them matches the setup. However,...
UBUNTU-CVE-2023-27533
A vulnerability in input validation exists in curl 8.0 during communication using the TELNET protocol may allow an attacker to pass on maliciously crafted user name and "telnet options" during server negotiation. The lack of proper input scrubbing allows an attacker to send content or perform...
CVE-2022-0982
The telnetinputchar function in opt/src/accel-pppd/cli/telnet.c suffers from a memory corruption vulnerability, whereby user input cmdlinelen is copied into a fixed buffer b-buf without any bound checks. If the server connects with a malicious client, crafted client requests can remotely trigger...